Lucene search
K

121 matches found

OSV
OSV
added last week5 views

DEBIAN-CVE-2026-53075

In the Linux kernel, the following vulnerability has been resolved: ppp: require CAPNETADMIN in target netns for unattached ioctls /dev/ppp open is currently authorized against file-fcred-userns, while unattached administrative ioctls operate on current-nsproxy-netns. As a result, a local...

8.8CVSS5.6AI score0.00182EPSS
Exploits1References1
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in PostgresSQL 11

A late privilege drop in the REFRESH MATERIALIZED VIEW CONCURRENTLY operation in PostgreSQL allows an object creator to execute arbitrary SQL functions as the command issuer. This feature enables the owner of the materialized view to run SQL functions, thereby allowing for the safe refreshing of...

8CVSS7.4AI score0.01465EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/06/09 2:0 p.m.7 views

Chromium: CVE-2026-11226 Insufficient policy enforcement in PreviewTab

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS5.4AI score0.00151EPSS
Exploits0
NVD
NVD
added 2026/05/27 3:16 p.m.17 views

CVE-2026-49047

Missing Authorization vulnerability in DearHive DearFlip allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects DearFlip: from n/a through 2.4.27...

4.3CVSS0.00162EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/05/16 8:5 a.m.19 views

NGINX ngx_http_rewrite_module vulnerability

...

9.2CVSS6AI score0.61469EPSS
Exploits39
Packet Storm News
Packet Storm News
added 2026/05/08 12:0 a.m.9 views

SL5 Standard for AI Security

Security Level 5 SL5 is a security posture for AI systems that could plausibly thwart top-priority operations by the world's most cyber-capable institutions: those with extensive resources, state-level infrastructure, and expertise years ahead of the public state of the art. The SL5 terminology...

5.8AI score
Exploits0
NVD
NVD
added 2026/04/20 9:16 p.m.3 views

CVE-2026-29642

A local attacker who can execute privileged CSR operations or can induce firmware to do so performs carefully crafted reads/writes to menvcfg e.g., csrrs in M-mode. On affected XiangShan versions commit aecf601e803bfd2371667a3fb60bfcd83c333027, 2024-11-19, these menvcfg accesses can unexpectedly...

7.8CVSS0.00112EPSS
Exploits0References4
Packet Storm News
Packet Storm News
added 2026/03/07 12:0 a.m.2 views

Exploring the Drivers of Information Security Policy Compliance among Contingent Employees: A Social, Deterrent, and Involvement-Based Approach

As institutions increasingly depend on Information Systems ISs, ensuring compliance with Information Systems Security Policies ISSPs is critical, especially among contingent employees, whose engagement differs from that of permanent staff. This study examines how Subjective Norm, Deterrence...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/12/09 12:0 a.m.6 views

Integrating Public Input and Technical Expertise for Effective Cybersecurity Policy Formulation

The evolving of digital transformation and increased use of technology comes with increased cyber vulnerabilities, which compromise national security. Cyber-threats become more sophisticated as the technology advances. This emphasises the need for strong risk mitigation strategies. To define stro...

6.9AI score
Exploits0
OSV
OSV
added 2025/11/11 10:56 p.m.1 views

MAL-2025-133782 Malicious code in gita-ikan31-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector cefba10b100ad5a3a3587a6978a44a45db55b481d96a9a8d0c908cbe091c83b3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/09 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2025-40109

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - crypto: rng - Ensure setent is always present Ensure that setent is always set since only drbg provides it. CVE-2025-40109 Note that Nessus relies on the presen...

6.1AI score0.00186EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2006-4454

Malware in sbrugna...

5CVSS6.4AI score0.01024EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/10/01 7:44 a.m.4 views

CVE-2025-39915

In the Linux kernel, the following vulnerability has been resolved: net: phy: transfer phyconfiginband locking responsibility to phylink Problem description =================== Lockdep reports a possible circular locking dependency AB/BA between &pl-statemutex and &phy-lock, as follows...

5.5CVSS5.4AI score0.00093EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-8277

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libssh's handling of key exchange KEX processes when a client repeatedly sends incorrect KEX guesses. The library fails to free memory durin...

3.1CVSS6.3AI score0.00375EPSS
Exploits0References3
Malwarebytes
Malwarebytes
added 2025/07/31 7:27 p.m.5 views

Trump Administration and Big Tech want you to share your health data

US President Donald Trump announced a loose plan Wednesday to allow Americans to voluntarily upload and port their medical records across hospitals, clinics, technology companies, and health apps, with broad participation from Google, Apple, OpenAI, Amazon, and more. While the system could help...

6.7AI score
Exploits0
Wired Threat Level
Wired Threat Level
added 2025/06/13 3:48 p.m.9 views

CBP's Predator Drone Flights Over LA Are a Dangerous Escalation

Customs and Border Protection flying powerful Predator B drones over Los Angeles further breaks the seal on federal involvement in civilian matters typically handled by state or local authorities...

7.1AI score
Exploits0
HackRead
HackRead
added 2025/05/07 12:11 p.m.16 views

Europol, Poland Bust Major DDoS-for-Hire Operation, Arrest 4

Polish authorities arrest 4 behind major DDoS-for-hire sites used in global attacks. Europol, US, Germany, and Dutch forces…...

7.3AI score
Exploits0
HackRead
HackRead
added 2025/04/10 3:40 p.m.10 views

Smokeloader Users Identified and Arrested in Operation Endgame

Authorities arrest 5 Smokeloader botnet customers after Operation Endgame; evidence from seized data links customers to malware, ransomware, and more...

7.3AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/04/07 12:0 a.m.4 views

PT-2025-28134 · Git +1 · Liblouis

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. affected versions not specified Description: The software suffers from an unknown write issue discovered through OSS-Fuzz. The crash state indicates involvement of the lou handlePassVariableAction...

7AI score
Exploits0References2
Google Chrome Security Advisories
Google Chrome Security Advisories
added 2025/02/12 12:0 a.m.30 views

Stable Channel Update for Desktop

The Stable channel has been updated to 133.0.6943.98/.99 for Windows, Mac and 133.0.6943.98 for Linux which will roll out over the coming days/weeks. A full list of changes in this build is available in the Log. Security Fixes and Rewards Note: Access to bug details and links may be kept restrict...

8.8CVSS7.4AI score0.0046EPSS
Exploits0Affected Software1
Rows per page
Query Builder